[jira] [Commented] (QPIDJMS-303) Add support for SASL GSSAPI Kerberos mechanism

Fri, 21 Jul 2017 06:15:53 -0700 

    [ 
https://issues.apache.org/jira/browse/QPIDJMS-303?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16096234#comment-16096234
 ] 

ASF GitHub Bot commented on QPIDJMS-303:
----------------------------------------

Github user gemmellr commented on a diff in the pull request:

    https://github.com/apache/qpid-jms/pull/10#discussion_r128747741
  
    --- Diff: qpid-jms-client/src/main/resources/login.config ---
    @@ -0,0 +1,23 @@
    +/*
    + * Licensed to the Apache Software Foundation (ASF) under one or more
    + * contributor license agreements.  See the NOTICE file distributed with
    + * this work for additional information regarding copyright ownership.
    + * The ASF licenses this file to You under the Apache License, Version 2.0
    + * (the "License"); you may not use this file except in compliance with
    + * the License.  You may obtain a copy of the License at
    + *
    + * http://www.apache.org/licenses/LICENSE-2.0
    + *
    + * Unless required by applicable law or agreed to in writing, software
    + * distributed under the License is distributed on an "AS IS" BASIS,
    + * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    + * See the License for the specific language governing permissions and
    + * limitations under the License.
    + */
    +
    +KRB5-CLIENT {
    +    com.sun.security.auth.module.Krb5LoginModule required
    +    useKeyTab=true
    +    principal="client"
    +    keytab="target/test.krb5.keytab";
    +};
    --- End diff --
    
    Should this file be in the src/test tree rather than in src/main?
    
    Naming the file more specifically for the test it is used in, e.g 
<testname>-login.config, would be good for later. Perhaps similarly for the 
keytab.


> Add support for SASL GSSAPI Kerberos mechanism
> ----------------------------------------------
>
>                 Key: QPIDJMS-303
>                 URL: https://issues.apache.org/jira/browse/QPIDJMS-303
>             Project: Qpid JMS
>          Issue Type: Bug
>          Components: qpid-jms-client
>            Reporter: Gary Tully
>
> It would be great to be able to authenticate using kerberos credentials using 
> the SASL GSSAPI mechanism.
> Authentication would be sufficient leaving TLS to do encryption of the 
> channel if that is necessary.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to